Multiple Choice
A company has a VPC with several Amazon EC2 instances behind a NAT gateway. The company's security policy states that all network traffic must be logged and must include the original source and destination IP addresses. The existing VPC Flow Logs do not include this information. A security engineer needs to recommend a solution. Which combination of steps should the security engineer recommend? (Choose two.)
A) Edit the existing VPC Flow Logs. Change the log format of the VPC Flow Logs from the Amazon default format to a custom format.
B) Delete and recreate the existing VPC Flow Logs. Change the log format of the VPC Flow Logs from the Amazon default format to a custom format.
C) Change the destination to Amazon CloudWatch Logs.
D) Include the pkt-srcaddr and pkt-dstaddr fields in the log format.
E) Include the subnet-id and instance-id fields in the log format.
Correct Answer:
Verified
Correct Answer:
Verified
Q67: A Security Administrator is restricting the capabilities
Q68: A security engineer received an Amazon GuardDuty
Q69: A company uses identity federation to authenticate
Q70: A Security Engineer manages AWS Organizations for
Q71: The Development team receives an error message
Q73: A large corporation is creating a multi-account
Q74: A security team is responsible for reviewing
Q75: The Security Engineer is managing a traditional
Q76: A company's Developers plan to migrate their
Q77: Auditors for a health care company have